Techniques for detecting shared devices
Abstract
Techniques for detecting shared devices are disclosed. In one particular exemplary embodiment, the techniques may be realized as a method for detecting shared devices comprising receiving, using a shared computer detection component, information about a connection to a website from a user device, identifying, using the shared computer detection component, one or more characteristics associated with the connection from the user device, determining, in the event there is sufficient data based on the one or more characteristics associated with the connection from the user device, whether the user device is a shared device, and calculating a first responsive action in the event it is determined that the user device is a shared device.
Claims
exact text as granted — not AI-modifiedThe invention claimed is:
1. A method for detecting shared devices comprising:
receiving, using a shared computer detection component, information about a connection to a website from a user device;
identifying, using the shared computer detection component, one or more characteristics associated with the connection from the user device;
determining, in the event there is sufficient data based on the one or more characteristics associated with the connection from the user device, whether the user device is a single shared network access device, wherein determining whether the user device is a shared device comprises:
identifying multiple unique identifiers associated with logins to the user device at different times;
determining a number of different identified login requests from the user device, wherein said determining comprises:
hashing one or more login names; and
counting a number of different hashed login names of the one or more hashed login names; and
calculating a first responsive action in the event it is determined that the user device is a shared device.
2. The method of claim 1 , wherein the data based on the one or more characteristics associated with the connection comprises a login name.
3. The method of claim 1 , wherein determining whether the user device is a shared device comprises determining whether a number of different identified login requests from the user device meets a specified threshold.
4. The method of claim 1 , further comprising:
storing, locally associated with the shared device, a unique anonymous indicator of the login name based on the hashed login name.
5. The method of claim 1 , further comprising:
storing, remote from the shared device, a unique anonymous indicator of the login name based on the hashed login name and an identifier of the user device.
6. The method of claim 1 , wherein determining different identified login requests comprises:
dividing the hashed login name by a specified number; obtaining a modulo of the division; and
setting a bit corresponding to the obtained modulo.
7. The method of claim 1 , wherein the one or more characteristics of the connection comprise an IP Address associated with the user device.
8. The method of claim 1 , wherein the one or more characteristics of the connection comprise one or more characteristics of a browser associated with the user device, wherein said one or more characteristics of the browser comprise one or more of a screen resolution, a font list, associated plug-ins and versions, a time zone, and Multipurpose Internet Mail Extensions (MIME) types.
9. The method of claim 1 , wherein determining whether the user device is a shared device comprises:
determining an IP address associated with the user device;
identifying one or more web browser characteristics of a web browser associated with the user device;
counting a number of unique sessions at the website, wherein the sessions are associated with the IP address and the web browser having the one or more web browser characteristics; and
determining whether the number of unique sessions exceeds a specified threshold.
10. The method of claim 1 , further comprising performing the first responsive action.
11. The method of claim 10 , wherein the first responsive action includes at least one of:
shortening a duration of a session associated with the website, using no caching headers for one or more HTTP responses, disabling a user option to remain signed in, disabling a user option to be remembered, limiting an amount of personally identifiable information displayed as a default, limiting an amount of sensitive personal information displayed as a default, limiting an amount of financial information displayed as a default, requiring additional authentication for a transaction, disabling functionality allowing restoration of a backup, disabling functionality allowing deletion of content, providing a warning to the user via a mobile device associated with the user, requiring an authentication from the user via a mobile device associated with the user, denying access to the website, logging the user out, terminating a session at the website, notifying an administrator, deleting browser history on logout, and logging one or more events associated with the connection.
12. The method of claim 1 , further comprising:
determining that the data based on the one or more characteristics associated with the connection from the user device indicates a potential shared device; and
determining a second responsive action in the event that the data based on the one or more characteristics associated with the connection from the user device is insufficient to determine that the user device is a shared device.
13. The method of claim 12 , wherein determining that the data based on the one or more characteristics associated with the connection from the user device indicates a potential shared computer comprises:
determining that a number of connections from a same IP address exceeds a specified threshold.
14. The method of claim 1 ,
further comprising determining that the data based on the one or more characteristics associated with the connection from the user device indicates a potential shared device; and
wherein determining that the data based on the one or more characteristics associated with the connection from the user device indicates a potential shared computer comprises:
determining that an IP address of the user device is associated with a geo-location not historically associated with the login.
15. The method of claim 12 , wherein the second responsive action comprises at least one of: prompting the user to confirm whether a user device is a shared device, logging the user out, notifying an administrator, and logging one or more events associated with the connection.
16. The method of claim 1 , wherein the determination is performed by at least one of: a third party identification provider, a network security vendor, the website, a browser on the user device, and an agent resident on the user device.
17. At least one non-transitory processor readable storage medium storing a computer program of instructions configured to be readable by at least one processor for instructing the at least one processor to execute a computer process for performing the method as recited in claim 1 .
18. An article of manufacture for detecting shared devices, the article of manufacture comprising:
at least one non-transitory processor readable storage medium; and
instructions stored on the at least one non-transitory processor readable storage medium;
wherein the instructions are configured to be readable from the at least one non-transitory processor readable storage medium by at least one computer processor and thereby cause the at least one computer processor to operate so as to:
receive, using a shared computer detection component, information about a connection to a website from a user device;
identify, using the shared computer detection component, one or more characteristics associated with the connection from the user device;
determine, in the event there is sufficient data based on the one or more characteristics associated with the connection from the user device, whether the user device is a single shared network access device, wherein determining whether the user device is a shared device comprises:
identifying multiple unique identifiers associated with logins to the user device at different times;
determining a number of different identified login requests from the user device, wherein said determining comprises:
hashing one or more login names; and
counting a number of different hashed login names of the one or more hashed login names; and
calculate a first responsive action in the event it is determined that the user device is a shared device.
19. A system for detecting shared devices comprising:
one or more computer processors communicatively coupled to a network; wherein the one or more computer processors are configured to:
receive, using a shared computer detection component, information about a connection to a website from a user device;
identify, using the shared computer detection component, one or more characteristics associated with the connection from the user device;
determine, in the event there is sufficient data based on the one or more characteristics associated with the connection from the user device, whether the user device is a single shared network access device, wherein determining whether the user device is a shared device comprises:
identifying multiple unique identifiers associated with logins to the user device at different times;
determining a number of different identified login requests from the user device, wherein said determining comprises:
hashing one or more login names; and
counting a number of different hashed login names of the one or more hashed login names; and
calculate a first responsive action in the event it is determined that the user device is a shared device.Cited by (0)
No later patents cite this yet.
References (0)
No backward citations on record.